Papers on Buffer Overflows
An Introduction to Heap overflows on AIX 5.3L
Buffer Underruns, DEP, ASLR and Improving the Exploitation Prevention Mechanisms (XPMs) on the Windows Platform
Defeating the Stack Based Buffer Overflow Prevention Mechanism of Microsoft Windows 2003 Server
Variations in Exploit methods between Linux and Windows
Non-stack Based Exploitation of Buffer Overrun Vulnerabilities on Windows NT/2000/XP
Windows Heap Overflows
Windows 2000 Format String Vulnerabilities
Buffer Overflows on SPARC Architecture
Buffer Overflows for Beginners
Exploiting Windows NT 4.0 Buffer Overruns (A Case Study: RASMAN.EXE)

Papers on Oracle Forensics
Oracle Forensics Part 7: Using the Oracle System Change Number in Forensic Investigations
Oracle Forensics Part 6: Examining Undo Segments, Flashback and the Oracle Recycle Bin
Oracle Forensics Part 5: Finding Evidence in the Absence of Auditing
Oracle Forensics Part 4: Live Response
Oracle Forensics Part 3: Isolating Evidence of Attacks Against the Authentication Mechanism
Oracle Forensics Part 2: Locating Dropped Objects
Oracle Forensics Part 1: Dissecting the Redo Logs

Papers on Database Security
Hacking Aurora in Oracle 11g
Exploiting PL/SQL Injection With Only CREATE SESSION Privileges in Oracle 11g
Understanding Database Security
Exploiting PL/SQL Injection Flaws with only CREATE SESSION Privileges
Bypassing DBMS_ASSERT (in certain situations)
Lateral SQL Injection - A New Class of Vulnerability in Oracle.
Cursor Injection - A New Method for Exploiting PL/SQL Injection and Potential Defences
Cursor Snarfing - A New Class of Attack in Oracle
Oracle PL/SQL Injection (Blackhat Japan)
Threat Profiling Microsoft SQL Server
Hack Proofing Oracle Application Server
Microsoft SQL Server Passwords
Data-mining with SQL Injection and Inference
Database Servers on Windows XP and the Unintended Consequences of Simple File Sharing
Web Application Disassembly with ODBC Error Messages
Hackproofing Lotus Domino Web Server

© David Litchfield, 2007.